Full Disclosure mailing list archives
[Full-Disclosure] Notifying an institution about a vulnerability
From: "Cliff Bamford" <bamford () oz net>
Date: Sat, 22 Apr 2006 21:53:31 +0200
i think you may exploit this vuln and get several SSN, and then email to the institute to show the severity of your report.
In the US, doing that could get you into a ton of criminal and civil trouble (I'm sad to say). What steps did the original poster take to notify the institution, exactly? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- [Full-Disclosure] Notifying an institution about a vulnerability Cliff Bamford (Apr 22)
- <Possible follow-ups>
- Re: [Full-Disclosure] Notifying an institution about a vulnerability CrYpTiC MauleR (Apr 22)